Testing, noyau 5.4

[BERTRAND Joël]

Bonjour à tous,

	Hier, j'ai mis à jour mon serveur avec un noyau 5.4 et j'ai constaté 
plusieurs problèmes qui ont été immédiatement résolus en repassant au 5.3.


	Première chose : mes interfaces réseaux physique sont eth0/1/2 
(interfaces renommés grâce à des règles udev).


	Avec le noyau 5.3, aucun problème, toutes les interfaces sont renommées 
correctement. Avec le 5.4, je me retrouve avec eth1, eth2 (correct) 
et... eno0 (outre une erreur lors du renommage qui prouve que udev fait 
son boulot, mais que le noyau refuse) !


	Second problème, à mon avis pire encore. J'ai quatre disques SAS en 
Raid6 sur un contrôleur Adaptec :

Root rayleigh:[~] > dmesg | grep aacraid
[1.003597] Adaptec aacraid driver 1.2.1[50877]-custom
[1.003611] aacraid :02:00.0: can't disable ASPM; OS doesn't have 
ASPM control

[1.018195] aacraid: Comm Interface type1 enabled
[1.446659] aacraid :02:00.0: 64 Bit DAC enabled
[1.466340] scsi host0: aacraid
Root rayleigh:[~] > uname -a
Linux rayleigh 5.3.0-2-amd64 #1 SMP Debian 5.3.9-3 (2019-11-19) x86_64 
GNU/Linux


	Jusqu'au noyau 5.3 inclus, aucun problème, système parfaitement stable. 
Avec le 5.4, le système remonte des erreurs disques et le bus SCSI se 
réinitialise (allant jusqu'à mettre en vrac les disques, pour les 
récupérer, il faut couper l'alimentation du serveur). Le premier reset 
SCSI arrivait bien avait la fin du boot du noyau. Je n'arrive pas à 
reproduire la chose avec le 5.3 et les disques me semblent en parfait état.


	Je ne sais pas si je suis le seul à observer ce genre de choses assez 
désagréables. J'ai déjà eu des problèmes de renommage (dues à la bouse 
systemd pour des raisons diverses ou variées, surtout lorsque le noyau 
n'était pas tout à fait en phase avec cet outil qui ne s'arrange 
vraiment pas en vieillissant !), mais jamais comme cela. De la même 
façon, je pense pouvoir retirer de l'équation un problème de disque, de 
câble ou de contrôleur puisqu'il n'y a aucune raison qu'une grappe de 
disques défectueuse fonctionne parfaitement sous le noyau précédent.


Bien cordialement,

JKB

Re: Ethernet trouble

[ghe]

> On Jan 30, 2020, at 04:48 PM, Bob Weber  wrote:

> "Example 3. Debugging NamePolicy= assignments" near the bottom of the page at
> "https://www.freedesktop.org/software/systemd/man/systemd.link.html;

Yeah. That's one I looked at. The one with the table of the Ethernet speeds and 
duplexity. And the list and descriptions of data that're sometimes needed in 
the file.

I'll look at this again tomorrow, Bob, but I'm really not impressed with the 
way systemd is setting up the Ethernet interfaces. Like I said before, 
"Counting Ethernet interfaces isn't rocket science." But it can be made so if 
you make things complex and spread the config over several dirs and several 
files, some of which are explained in the dox but turn out not to exist on my 
Buster disk. 

Somehow, back in the eth days, the data in Debian's /etc/network/interfaces 
file was enough to get networking going. Then, on an Ethernet network, the 
Ethernet chips pretty well figured out the best speed and duplex all by 
themselves as soon as they connected to something. 

> This nameing configuration has worked on 5 Debian systems all running updated 
> testing.

And counting interfaces has worked for me for a couple decades, on many systems 
and several OSs. But I'll find your earlier email and try systemd one more 
time. It'd be nice for the interface names to be, as systemd calls it, 
'consistent.'

And, FWIF, I appreciate your help and advice...

-- 
Glenn English

Re: How to configure e-net port again

[john doe]

On 1/31/2020 2:48 AM, Dennis Wicks wrote:
> I am running Debian Buster 10, upgrade within the past week.
>
> I tried to change my e-net to use dhcp, which I thought it was but it

How did you try to change your e-net to use dhcp?

> wasn't picking up all the info from the DHCP server, specifically the IP
> addr. Now it doesn't work at all. How can I run through the setup/init
> process that it went through at install to get back at least a working
> communications port.
>

I would say, revert the change(s)that you have done.

--
John Doe

Re: Sudo

[Keith Bainbridge]

On 31/1/20 5:21 am, Patrick Bartek wrote:

On Thu, 30 Jan 2020 18:29:06 +1100
Keith Bainbridge  wrote:


On 29/1/20 6:02 am, Patrick Bartek wrote:

My point is that sudo is more of a security "hole" since it only
requires a user's password which in my experience are less secure since
most users create short, easy to remember ones.



Which is why I suggested you tell sudo to require root password.


How is that any different from just using su -c and not even
implementing sudo at all?

B




Good afternoon


I found setting su -c aliases frustratingly difficult. Mainly connected 
with connecting strings of commands  such as apt update && apt upgrade 
I have an alias for su -c ' for when I wanted a rarely used command, 
but more often than not I forgot to type the closing' - further 
frustration.


Aliases for sudo commands are simpler to write, somehow.


I was also entering root password several times more often than I needed 
with sudo.   my old RSI was complaining.


Only root can use sudo.  I need the password lass often, and it is not 
remembered in other terminal sessions, other than the one I use it.


If I am broken into, the burglar needs root password as well as my user 
password to get to my back-ups etc.  My user password got 'very strong' 
ratings on installations that rate them. Root must be at least one level 
stronger.



Open source is about choices.   I'll be crying severely if I have chosen 
wrong in this case.



--
Keith Bainbridge

keith.bainbridge.3...@gmail.com
0447 667 468

Re: [HS] Transmission de SSID

[maxime]

Bonjour.

Pour que la transparence soit effective, il faut que l'association 
ESSID+KEY+ENCryption soient identiques.

Les périphériques s'en rendrons compte car le BSSID est propre à chaque AP mais 
ne les empêcheront pas de se connecter (sauf si le BSSID est formellement 
stipulé dans la conf cliente de nm ou autre).

Le 30 janv. 2020 15:33, Erwann Le Bras  a écrit :
>
> bonjour 
>
> pour avoir expérimenté lors de la bascule de mon FAI de Bbox à Free : Si 
> le SSID est le même avec le mot de passe identique, les périphériques ne 
> se rendront compte de rien. 
>
> cordialement 
>
> Le 24/01/2020 à 21:20, MERLIN Philippe a écrit : 
> > Bonjour, 
> > Le problème que je pose ne concerne pas Debian c'est pourquoi j'ai mis un 
> > [HS] 
> > devant le sujet . Actuellement J'ai une connexion fibre arrivant sur une 
> > Freebox Mini 4K configurée en mode routeur et servant de serveur Wifi, ce 
> > serveur Wifi à un SSID et un mot de passe pour y accéder. La Mini 4K est un 
> > peu 
> > faible comme serveur Wifi , j'ai décidé de configurer la Mini 4K  en mode 
> > Bridge 
> > et confier à un routeur Wifi ce rôle de serveur Wifi le routeur aura le 
> > même SSID 
> > et le même mot de passe. 
> > J'aimerai savoir si ces modifications  dans le réseau local passeront 
> > complètement inaperçu des utilisateurs ou devront ils se réinitialiser 
> > complètement ? 
> > Cette question concerne également une imprimante Wifi ? 
> > Merci pour vos avis. 
> > Philippe Merlin 
> > 
> > 
>

Re: How to configure e-net port again

[Daryl]

On Thu, 30 Jan 2020 19:48:36 -0600
Dennis Wicks  wrote:

> I am running Debian Buster 10, upgrade within the past week.
> 
> I tried to change my e-net to use dhcp, which I thought it 
> was but it wasn't picking up all the info from the DHCP 
> server, specifically the IP addr. Now it doesn't work at 
> all. How can I run through the setup/init process that it 
> went through at install to get back at least a working 
> communications port.
> 
> Many, many TIA!!
> Dennis
> 

What's in /etc/network/interfaces?

How to configure e-net port again

[Dennis Wicks]

I am running Debian Buster 10, upgrade within the past week.

I tried to change my e-net to use dhcp, which I thought it 
was but it wasn't picking up all the info from the DHCP 
server, specifically the IP addr. Now it doesn't work at 
all. How can I run through the setup/init process that it 
went through at install to get back at least a working 
communications port.


Many, many TIA!!
Dennis

Re: customização da Live CD

[Qobi Ben Nun]

Olá Caio,

Creio que seja uma boa ideia entrar em contate com o pessoal da lista
debian-l...@lists.debian.org, pois é onde se discute a respeito dessa
versão do sistema.

Att, 


On 30/01/20 03:11, Caio Ferreira wrote:
> Lista
> 
> alguém saberia me dizer se existe a possibilidade de customizar a iso do
> Live CD do Debian? eu estou querendo acrescentar o software minicom ou
> putty no live CD do Debian
> 
> desde já agradeço pela atenção
> 
> Caio Abreu Ferreira

-- 
Qobi Ben Nun

GPG F733 0F08 BB62 FA82 A6B6
E4E0 E781 D54A 536F 0287

Re: Fresh install UEFI debian-10.2.0-amd64-xfce-CD-1 will not boot

[Steve McIntyre]

hans.ullr...@loop.de wrote:
>Am Mittwoch, 29. Januar 2020, 19:51:28 CET schrieb David Christensen:
>Hi David,
>
>although it is not recommended as the documentation is telling, but just try 
>out RUFUS or UNETBOOTIN to create a bootable USB-Stick.
>
>Maybe this works better than using dd.

NO NO NO. Do not listen to this. Unetbootin has caused many difficult
support problems over the years, wasting lots of time for me and other
Debian developers. We've worked very hard to make the installer boot
and run on diverse computers, then unetbootin has broken things for
users. We explicitly disrecommend it for that exact reason.

This is even more important with new features like UEFI and Secure Boot.

Rufus is a different matter - it has a "DD mode" which *is* useful for
writing an image to a USB stick unmolested.

-- 
Steve McIntyre, Cambridge, UK.st...@einval.com
  Armed with "Valor": "Centurion" represents quality of Discipline,
  Honor, Integrity and Loyalty. Now you don't have to be a Caesar to
  concord the digital world while feeling safe and proud.

Re: Fresh install UEFI debian-10.2.0-amd64-xfce-CD-1 will not boot

[Steve McIntyre]

David wrote:
>debian-users:
>
>I would like to create a USB flash drive with Debian that I can boot in 
>new Windows 10 machines with UEFI Secure Boot, so that I can examine 
>things, run tools, take images of the Windows system drive, etc., before 
>booting Windows for the first time.
>
>
>I have downloaded, verified the checksum, and burned the following to a 
>USB flash drive:
>
> https://cdimage.debian.org/debian-cd/current/amd64/jigdo-cd/
>
>debian-10.2.0-amd64-xfce-CD-1.iso
>
>
>Using a Dell PowerEdge T30 with CMOS Setup configured for UEFI and 
>Secure Boot, I booted d-i and installed onto a wiped USB flash drive -- 
>hostname "buster".
>
>
>When I attempt to boot buster, the T30 firmware does not see the it:
>
> No bootable devices found
> Press F1 key to retry boot.
> Press F2 to reboot into setup.
> Press F5 key to run onboard diagnostics.

OK. How exactly have you partitioned the target USB drive? What files
are on the EFI System Partition there? Did you tell the installer to
also install grub to the removable media path? That would be my first
guess for what's missing.

...

>Using the T30 in Secure Boot again, I booted d-i into a rescue shell, 
>mounted buster root, boot, efi, dev, proc, and sys, and started Bash:
>
> root@d-i:/# ls -1 /usr/lib/grub
> grub-mkconfig_lib
> x86_64-efi
> x86_64-efi-signed
>
> root@d-i:/# grub-install --target x86_64-efi-signed
> grub-install: error: /usr/lib/grub/x86_64-efi-signed/modinfo.sh 
>doesn't exist. Please specify --target or --directory.
>
> root@d-i:/# find /usr/lib/grub -name modinfo.sh
> /usr/lib/grub/x86_64-efi/modinfo.sh
>
>
>It seems /usr/lib/grub/x86_64-efi/modinfo.sh is missing.

You don't need to tell grub-install to use x86_64-efi-signed as a
target - it should work things out automatically and install shim
etc. as needed. There is *not* a modinfo.sh for the signed grub
packaging as the signed binaries we build for grub are monolithic
(i.e. no loadable modules allowed).

-- 
Steve McIntyre, Cambridge, UK.st...@einval.com
  Armed with "Valor": "Centurion" represents quality of Discipline,
  Honor, Integrity and Loyalty. Now you don't have to be a Caesar to
  concord the digital world while feeling safe and proud.

Re: Ethernet trouble

[Bob Weber]

On 1/30/20 6:17 PM, ghe wrote:

On 1/30/20 1:42 PM, Bob Weber wrote:


That's why I recommended you look into systemd link files.

I looked that up on the 'Net, and it seems pretty reasonable. I looked
around a bit and was told to edit

/usr/lib/systemd/network/99-default.link

(MAC addresses are back to hardware again, but easier to handle -- at
least they're the same whenever you look at them. And Debian puts config
files in /etc. Used to, anyway)

There's a line in 99-default.link about =persistent. The web
says that if I change that to 'none' I'll get the old names back.

I did, and I didn't.


Systemd has
the undesired effect of renaming interfaces.  You need to use the MAC
address to indicate which port should be eth0 , etc.

It looks like it'll take a lot more than changing a value in a config
file to have happen what I expect. I think I'll just leave things alone
for the time being. Now I know to expect systemd to break things, and
now I know to write around it. I was completely at a loss when those
numbers just changed for no apparent reason.

Counting Ethernet interfaces isn't rocket science.

Again, thanks list.

That's why I showed in theprevious email a file for eth0 and eth1 matching their 
MAC address.   The "99-default.link" file is taken out of the works by 
(symbolic) linking it to /dev/null.  This means whatever was in that file 
messing up the port names is gone.  The kernel command line option 
"net.ifnames=0" may or may not be needed ... try without at first.


After a reboot the names should be what you put in the  [Link] section of the 
files " /etc/systemd/network/10-eth0.link" and 
"/etc/systemd/network/20-eth0.link" assuming you put in the correct MAC address 
in the [Match] section.


If the names are are still not correct then there are some examples of a udevadm 
command like in the "Example 3. Debugging NamePolicy= assignments" near the 
bottom of the page at 
"https://www.freedesktop.org/software/systemd/man/systemd.link.html 
"


This nameing configuration has worked on 5 Debian systems all running updated 
testing.


Note: the /sys/class/net/hub0 mentioned in Example 3 should be replaced by the 
current port name found in /sys/class/net directory.


--


*...Bob*

Re: Ethernet trouble

[ghe]

On 1/30/20 1:42 PM, Bob Weber wrote:

> That's why I recommended you look into systemd link files. 

I looked that up on the 'Net, and it seems pretty reasonable. I looked
around a bit and was told to edit

/usr/lib/systemd/network/99-default.link

(MAC addresses are back to hardware again, but easier to handle -- at
least they're the same whenever you look at them. And Debian puts config
files in /etc. Used to, anyway)

There's a line in 99-default.link about =persistent. The web
says that if I change that to 'none' I'll get the old names back.

I did, and I didn't.

> Systemd has
> the undesired effect of renaming interfaces.  You need to use the MAC
> address to indicate which port should be eth0 , etc.  

It looks like it'll take a lot more than changing a value in a config
file to have happen what I expect. I think I'll just leave things alone
for the time being. Now I know to expect systemd to break things, and
now I know to write around it. I was completely at a loss when those
numbers just changed for no apparent reason.

Counting Ethernet interfaces isn't rocket science.

Again, thanks list.

-- 
Glenn English

Re: cpu frequence

[Linux-Fan]

Gerard ROBIN writes:


Hello,
the maximum frequency of my cpu is 2.8 GHz and under "bullseye" the frequency
of my cpu is always higher than 2.7 GHz. If this is a bug how can we
determine which package is affected ?


Normally, modern CPUs go to high frequency only if they are "loaded". Thus,
I'd suggest to check if there is any process obviously taking a lot of CPU
time. `top` might be enough for a glance, but I normally like `htop` and
`atop` outputs more (`htop` is more "friendly", but `atop` is more
informative IMHO).

The other thing is: As long as it is always below or equal to 2.8 GHz, it
need not be wrong. However, most machines with U-processors (especially
notebooks) have a cooling system which does not permit them to sustain the
maximum frequency for long. You might investigate this by generating load on
all cores e.g. like this:

dd if=/dev/urandom bs=4M count=1024 | pv | xz -T 0 -9 > /dev/null


With "buster" on the same machine the problem does not occur. The cpu
frequency
is between 900 MHz and 1.8 GHz


That sounds very low? What happens if you generate some load. Does it stay
this way or go (temporarily?) up to the 2.3 or 2.8 GHz?

Test (vary the `count` to check for longer times, add `-T` parameters to
`xz` to check a specific number of cores):

dd if=/dev/urandom bs=4M count=10 | xz -9 > /dev/null

In case it would be missing on your system, `xz` is part of package
`xz-utils`. It is not a "proper" benchmark tool btw. In case it is not
obvious: None of these tests outputs anything useful, the idea is to
check the frequencies while the tests are running and see how they differ
from before/afterwards as to find out if the frequency behaves as expected.
I'd generally expect the following results (in the absence of bugs :) )

* Loading a single core (`xz -9` without `-T 0`) brings it to maximum
  frequency (2.8 GHz).
* Loading multiple cores (`xz -9 -T 0`) brings them to the max frequency
  for a short time and then has them drop to the base frequency or even
  below.
* Not having any load on the machine should go in the low requency range,
  the 800 MHz to 1.8 GHz range sounds plausible for this.

Another interesting check: Which of the two behaviours seen (low freq range
vs. high freq range) is exposed if you run a backported Kernel on the Buster
system such as to have the comparison for similar kernel versions?


cpu: intel i5-6200U
Base frequency: 2.3 GHz
Max Frequency: 2.8 GHz


HTH
Linux-Fan

[...]


_
*
*  Created with "mutt 1.10.1-2.1"
*  under Debian Linux BUSTER 10.1
*


[begin humor/OT]
Oh no, why are there no asterisks on the right side? It looks so asymmetrical?
SCNR, see also: https://xkcd.com/859/
[end humor/OT]


pgp_Q9pY4mZrp.pgp
Description: PGP signature

cpu frequence

[Gerard ROBIN]

Hello,
the maximum frequency of my cpu is 2.8 GHz and under "bullseye" the frequency
of my cpu is always higher than 2.7 GHz. If this is a bug how can we determine
which package is affected ?
With "buster" on the same machine the problem does not occur. The cpu frequency
is between 900 MHz and 1.8 GHz

cpu: intel i5-6200U 
Base frequency: 2.3 GHz
Max Frequency: 2.8 GHz
 
-- 
Gerard
_
*
*  Created with "mutt 1.10.1-2.1"
*  under Debian Linux BUSTER 10.1
*

Re: Upcycle Windows 7 by FSF

[Sinval Júnior]

Tive a mesma indiginação que o Thiago. Eles devem ser alguma ONG não muito
técnica. Como o objetivo deles é defender a liberdade, inclusive dos
usuários do Windows.



1 - https://www.fsf.org/about/
Ao encaminhar esta mensagem, por favor:
1 - Apague meu endereço eletrônico;
2 - Encaminhe como Cópia Oculta (Cco ou BCc) aos seus destinatários.
Dificulte assim a disseminação de vírus, spams e banners.

#=+
#!/usr/bin/env python
nome = 'Sinval Júnior'
email = 'sinvalju arroba gmail ponto com'
print nome
print email
#==+


Em qui., 30 de jan. de 2020 às 18:00, Thiago C. F. <
thiagocanuto...@gmail.com> escreveu:

> Para quê o Windows 7 se já temos o Debian 10?
> Pedir como sugestão é uma coisa, agora exigir... quem é a FSF para isso?
> Antes reconheça que o Debian é Software Livre.
>
> Exigimos que o FSF reconheça o Debian como software livre!
> Pronto! Agora vamos ver se aceitam a proposta!
>
> Thiago C. F.
>
> Encontre o Que Precisar em Minha Loja Virtual:
> *www.magazinevoce.com.br/magazinelojadothiagocf
> *
>
> Fique ligado nas Ofertas Diárias: https://t.me/ofertas_diarias
>
> Meu blog: https://investimentosenegocios.wordpress.com/
>
>
> Em qui., 30 de jan. de 2020 às 08:43, Leandro de Nobrega <
> leanobr...@gmail.com> escreveu:
>
>> Srs.(as), boa noite!!!
>>
>> Incomodando!!!
>> E vamos continuar.
>> Leiam, assinem e compartilhem..
>>
>> Upcycle Windows 7 LEIA AQUI
>> 
>>
>>
>>
>>

Re: Upcycle Windows 7 by FSF

[Thiago C. F.]

Para quê o Windows 7 se já temos o Debian 10?
Pedir como sugestão é uma coisa, agora exigir... quem é a FSF para isso?
Antes reconheça que o Debian é Software Livre.

Exigimos que o FSF reconheça o Debian como software livre!
Pronto! Agora vamos ver se aceitam a proposta!

Thiago C. F.

Encontre o Que Precisar em Minha Loja Virtual:
*www.magazinevoce.com.br/magazinelojadothiagocf
*

Fique ligado nas Ofertas Diárias: https://t.me/ofertas_diarias

Meu blog: https://investimentosenegocios.wordpress.com/


Em qui., 30 de jan. de 2020 às 08:43, Leandro de Nobrega <
leanobr...@gmail.com> escreveu:

> Srs.(as), boa noite!!!
>
> Incomodando!!!
> E vamos continuar.
> Leiam, assinem e compartilhem..
>
> Upcycle Windows 7 LEIA AQUI
> 
>
>
>
>

Re: Ethernet trouble

[Stefan Monnier]

> For the rest of us, who didn't drink the OO kool-aid, overloading is
> just a nightmare.

Even outside of OO, most languages overload `+` to mean "integer
addition" when applied to integers and "double-precision float addition"
when applied to double-precision floats.

IOW while I agree that overloading is a nightmare, the absence of
overloading also tends to be a nightmare ;-)


Stefan "still not quite sure what `+` should do when applied to
Ethernet and even less so when applied to trouble"

Re: Ethernet trouble

[Bob Weber]

On 1/30/20 1:58 PM, ghe wrote:

On 1/29/20 7:06 PM, David Wright wrote:


These boards, do their PCI addresses have the save bus number but
different slot/device numbers? dmesg or kern.log will give you
those: they look like NN:DD.F optionally preceded by :, where
 is the domain (typically ), NN is the bus, DD the device
of slot, F the function(s) provided by that card, eg
pci :00:0e.0: [10ec:8139] type 00 class 0x02

Well, I don't in any way consider myself a hardware guy, but in Java,
Pascal, C, PERL, Python, FORTRAN, BashScripts, etc, '+' usually does the
same thing every time I type it.

I looked at dmesg a bit. I greped it for 'enp' and there was a funny
joke in the first 2 lines (of the grep output):

[2.181317] e1000e :08:00.0 enp8s0: renamed from eth1
[2.422105] e1000e :07:00.0 enp7s0: renamed from eth0

So something took the rational Ethernet interface names and,
intentionally I assume, broke hundreds of lines of code.

That's why I recommended you look into systemd link files. Systemd has the 
undesired effect of renaming interfaces.  You need to use the MAC address to 
indicate which port should be eth0 , etc.  See my previous post.



...Bob

Re: Ethernet trouble

[Greg Wooledge]

On Thu, Jan 30, 2020 at 11:58:47AM -0700, ghe wrote:
> Well, I don't in any way consider myself a hardware guy, but in Java,
> Pascal, C, PERL, Python, FORTRAN, BashScripts, etc, '+' usually does the
> same thing every time I type it.

In bash, += can be used to append to a string variable, to increment a
pseudo-integer variable, or to append new elements to an array.

If you restrict yourself to a raw + sign, it can be a simple string
constant that you're printing, or it can be part of an integer
addition expression, or it can be the special sentinel of a find -exec
command which terminates the -exec and requests xargs(1)-like behavior
(aggregation of many arguments into a single call).

The use of the same syntactic element with different meanings depending
on context is called "overloading".  In some programming languages,
like C++, this is considered a "feature".  You mentioned Java, which
probably does a bit of it as well.  I don't really know Java, thank gods.

For the rest of us, who didn't drink the OO kool-aid, overloading is
just a nightmare.

What this has to do with hardware, I have no idea.

Re: entirely keyboard based installation ...

[Charles Curley]

On Thu, 30 Jan 2020 11:37:11 -0600
David Wright  wrote:

> If you file a bug, make sure the model number is specific (which
> I think yours is). 

You should be able to get model, serial and other numbers from
dmidecode.

-- 
Does anybody read signatures any more?

https://charlescurley.com
https://charlescurley.com/blog/

Re: Sudo

[Patrick Bartek]

On Wed, 29 Jan 2020 08:21:44 +0100
 wrote:

> On Tue, Jan 28, 2020 at 07:00:03PM -0800, Patrick Bartek wrote:
> > On Tue, 28 Jan 2020 20:18:01 +
> > Brian  wrote:
> >   
> > > On Tue 28 Jan 2020 at 11:02:12 -0800, Patrick Bartek wrote:
> > >   
> > > > The biggest security flaw with any OS is the user.
> > > 
> > > By God. I wish I said that!
> > > 
> > > The same is true is true of motor cars, washing machines, microwave
> > > cookers, TV sets, bicycles, the postal system etc, etc. These damned
> > > humans - nothing but trouble.  
> > 
> > Except the smart ones. They read the manual. :)  
> 
> You don't seem to -- otherwise you'd have found how to get Debian to
> check password strength ;-P

I do know how, but it's not really necessary on a single-user system
like this one or the OP's. Just follow a few simple rules which are
usually in the install instructions, and you're reasonably secure. 

If you're referring to the statement I made, which you didn't quote
here, about coming across a couple of distros that did check for
password strength, I was refering to this happening during an initial
install which I had never come across before.  When testing a distro in
a VM, I use very simple passwords for both root and user just for
convenience since the distro will be deleted after testing. So, if the
installer checked, I would have seen this a lot. I haven't.

B   

Re: Ethernet trouble

[ghe]

On 1/29/20 7:06 PM, David Wright wrote:

> These boards, do their PCI addresses have the save bus number but
> different slot/device numbers? dmesg or kern.log will give you
> those: they look like NN:DD.F optionally preceded by :, where
>  is the domain (typically ), NN is the bus, DD the device
> of slot, F the function(s) provided by that card, eg
> pci :00:0e.0: [10ec:8139] type 00 class 0x02

Well, I don't in any way consider myself a hardware guy, but in Java,
Pascal, C, PERL, Python, FORTRAN, BashScripts, etc, '+' usually does the
same thing every time I type it.

I looked at dmesg a bit. I greped it for 'enp' and there was a funny
joke in the first 2 lines (of the grep output):

[2.181317] e1000e :08:00.0 enp8s0: renamed from eth1
[2.422105] e1000e :07:00.0 enp7s0: renamed from eth0

So something took the rational Ethernet interface names and,
intentionally I assume, broke hundreds of lines of code.

Once I was installing a computer that had a single Ethernet port
soldered to the mobo (a Dell). I had an eth0, but I needed an eth1, so I
put a card in the PCI bus. On reboot, I had eth0 and eth1. 0 was the
mobo, 1 was the card. And it was eth1 no matter which slot it was in.

Or if I put in a sound-card.

They were named by function, not by bus and slot. As a programmer, I'm
much more interested in *what* they are, not *where* they are. I
especially don't need some broken piece of software to rename them.

I know I can put them back to the 'inconsistent' names in Grub, and I'll
be doing that -- and editing the shell scripts.

> AIUI it's nothing to do with the OS as these decisions are made by
> the firmware on the mobo. Juggling cards in a mobo can even outwit
> the BIOS so that the POST won't succeed: I've had mobos where I've
> had to empty the box, power-up and save the settings, add one card
> and repeat, add the next and so on, all to get a box with the cards
> I wanted, located where I wanted them.

With all the 'puters I've dealt with, I've never seen anything like
that. If I got one that did that, I'd have sent it back to Amazon and
bought a Dell or a Raspberry Pi or a SuperMicro -- something with a
competently written and tested BIOS.

Besides, we've got UDEV. It allegedly looks at hardware and makes it
make sense. To do that, it must, I suspect, ignore what the BIOS says
and scan the bus(es) itself. If it does that, my Ethernet ports would
have had the same labels, unless somebody renamed them. Would be the
same too, if they'd just been left alone.

I'm not looking forward to systemd.emacs.

-- 
Glenn English

Re: [HS] L’insolente santé de Microsoft, dopé par le Cloud

[Bureau LxVx]

Bonjour @ tous,

Le 30/01/2020 à 14:52, ajh-valmer a écrit :
> Tout est dans le sujet, l'article complet :
>
> www.lefigaro.fr/societes/l-insolente-sante-de-microsoft-dope-par-le-cloud-20200130
>
> Sa capitalisation boursière  atteint 1.282 milliards de dollars.
> (elle pourrait rembourser la moitié de la dette de la France).
>
> Et dire que Microsoft n'est plus dans les GAFAM, devenu maintenant GAFA.
> (au fait, pourquoi... ?).
Les offres open-bar militaire et éducation, tout simplement !
M$ est l'ami de la France  et hop ! plus de gafaM

Bien librement,

Sylvie

Re: Sudo

[Patrick Bartek]

On Thu, 30 Jan 2020 18:29:06 +1100
Keith Bainbridge  wrote:

> On 29/1/20 6:02 am, Patrick Bartek wrote:
> >> My point is that sudo is more of a security "hole" since it only
> >> requires a user's password which in my experience are less secure since
> >> most users create short, easy to remember ones.  
> 
> 
> Which is why I suggested you tell sudo to require root password.

How is that any different from just using su -c and not even
implementing sudo at all?

B

customização da Live CD

[Caio Ferreira]

Lista

alguém saberia me dizer se existe a possibilidade de customizar a iso do
Live CD do Debian? eu estou querendo acrescentar o software minicom ou
putty no live CD do Debian

desde já agradeço pela atenção

Caio Abreu Ferreira

Re : [HS] L’insolente santé de Microsoft, dopé par le Cloud

[k6dedijon]

Bonjour à tous,
Tant que nous ne communiquerons pas plus sur le fait que Microsoft et Apple ont 
des noyaux dérivés d'UNIX, nous leur laissons le champ libre pour continuer à 
vendre des systèmes privateurs de liberté.
Cassis




- Mail d'origine -
De: ajh-valmer 
À: debian-user-french@lists.debian.org
Envoyé: Thu, 30 Jan 2020 14:52:01 +0100 (CET)
Objet: [HS] L’insolente santé de Microsoft, dopé par le Cloud

Tout est dans le sujet, l'article complet :

www.lefigaro.fr/societes/l-insolente-sante-de-microsoft-dope-par-le-cloud-20200130

Sa capitalisation boursière  atteint 1.282 milliards de dollars.
(elle pourrait rembourser la moitié de la dette de la France).

Et dire que Microsoft n'est plus dans les GAFAM, devenu maintenant GAFA.
(au fait, pourquoi... ?).

Re: no rsync in the German installation? (Kommando nicht gefunden.)

[Gene Heskett]

On Thursday 30 January 2020 10:10:41 Linux-Fan wrote:
[...]
> I am still genuinely curious about the answers to the questions above
> especially wrt. being hacked, the exact restoration conditions and the
> reason for being offline to restore data?
>
> YMMV
> Linux-Fan

20 + years ago I first heard of dd-wrt, and I ran it on an old machine 
for several years as an isolator between my local network in the 
192.168.xx.xx range for several years. But the old box died, and I 
looked for a router that could be reflashed, finding at the time a 
buffalo netfinity which could be reset, actually came with it but they 
covered a piece of the menu with their blurb so I had to reflash it 
right away with the real thing. Then, because that was so inconvenient, 
I found a netgear I could reflash, but I had to clone the buffalo's mac 
into it to get my ipv4 address back.  So I now have 2 routers available 
in case one gets bumped by whatever.  I used to watch its logs to see 
the attackers that never get past it, but they never have.

So I eventually got rid of verizon's 70 yo copper in favor of a slow 
connection from the local cable folks about 7 years back which meant I 
had to register a new net address, but I've now renewed that fixed 
address for another 5 years.  In all that time I've had the web page you 
can access at the link in my sig and only one person, a friend of mine 
and a linux net guru now working as the linux guy at a 3 letter guv 
agency that I had to give credentials to, has come thru it.

I'd say that's pretty darned good security, yet I can go anyplace on the 
net I want to from here or one of the other 4 or 5 machines on my local 
net except for several dozen iptables rules of the xx.xx.xx.xx/24 
variety because they are web spiders that don't play by the robots.txt 
rules, instead of indexing my pages, they insist on mirroring it, 
burning up what little upload bandwidth I have.  Because at the moment I 
am supplying an armhf build of LinuxCNC and the preempt-rt kernel that 
runs on a raspberry-pi4b to run cnc machinery with.  And its doing it as 
well as 3 other LCNC installs on x86 machines can.

Lesson? junk your router and get one that can be reflashed, dd-wrt has 
some competition. Router reflash files are downloadable for free from 
the dd-wrt site. And sleep well with your stuff up 24/7/365.

Cheers, Gene Heskett
-- 
"There are four boxes to be used in defense of liberty:
 soap, ballot, jury, and ammo. Please use in that order."
-Ed Howdershelt (Author)
If we desire respect for the law, we must first make the law respectable.
 - Louis D. Brandeis
Genes Web page 

Problem with fish in plasma

[Hans]

Hi folks,

I got into a problem with "fish" in plasma. 

When I do the correct syntax like the following example

fish://username@192.168.1.45:/home/username

I am running into a gdbus.error.

Examing the problem, I believe, the user has destroyed something in his 
profile. I created a new user for testing purposes and this one is working like 
a charme.

However, as I do not want to delete the whole plasma configuration, maybe 
someone knows, which configuration file (possibly below ~/.kde, ~/.local or 
~/.config) might be responsible for that, so that I could either delete it or 
check the settings.

Any help is preciated!

Thank you very much for any hints.

Best regards

Hans 

signature.asc
Description: This is a digitally signed message part.

Re: entirely keyboard based installation ...

[David Wright]

On Thu 30 Jan 2020 at 12:17:02 (+0100), Albretch Mueller wrote:
>  I was installing Debian yesterday and my mouse wasn't working (a
> Leneovo Netbook X130e).

If you file a bug, make sure the model number is specific (which
I think yours is). As it works normally, you might also give
specifics about the touchpad (or whatever it is that doesn't work).
Example at BTS #946118.

>  I tried to tab through to the „Bilschirmbild“ option, but could not
> reach out to it because that option was being skipped!?
> 
>  That shouldn't be and/or I wonder what the reason for that
> obstruction could be.

I take it that Bil[d?]schirmbild means Screenshot: yes, it does appear
that TABbing doesn't reach that button (including using modifiers).
Would you be able to navigate the cursor over the button by using the
Accessibility options (2nd item I think) to select 'moving the cursor
with the arrow keys' (assuming that's available).

(I'm afraid I normally use the non-graphical option, remote
installation via ssh, and scrot, to take screenshots.)

Cheers,
David.

Re: no rsync in the German installation? (Kommando nicht gefunden.)

[David Wright]

On Thu 30 Jan 2020 at 13:12:10 (+0100), Albretch Mueller wrote:
> On 1/30/20, Stephan Seitz  wrote:
> > On Do, Jan 30, 2020 at 12:14:19 +0100, Albretch Mueller wrote:
> >> Hmm! I thought and would expect for rsync to be installed by default!
> >
> > No, rsync is Priority: optional.
> 
>  The first line of the DESCRIPTION of the rsync package goes: "rsync
> is a fast and extraordinarily versatile file copying tool . . ."

AIUI the reason rsync is fast is because it takes short-cuts, only
transferring what's different rather than the entire tree of files.

> […]

>  Way more often and "structured" than I could possibly attribute to
> normal, random issues (well, I have more than enough reasons to
> believe that it cannot possibly be "random" at all ;-)), I notice my
> computer being hacked. What I do is:
> 
>  1) save all my data

That might be too late if the hacker has already corrupted it.

>  2) reinstall the baseline
>  3) transfer all my data back to the new installation
> 
>  for §3 you would need rsync and, of course, you must do §1, §2 et §3
> off line.

If you're copying *all* your data to a blanked installation, then you
might as well use, say, cp -a. Your speed is being controlled by the
devices and their connection which rsync cannot accelerate.

> Then, I:
> 
>  4) baseline all my data (getting a snapshot of all files metadata and
> signatures of their content)
>  5)  connect to the Internet without javascript enabled from a
> (possibly random) public place
>  6) run a custom script to apt-get the rest
>  7) baseline all my data again

This is strange. We agree that you are paranoid, so why aren't you
running your system from an immutable device like an optical disk?
Debian and linux have worked hard to achieve a separation between
variable files (on /var) and everything else in the OS, let alone
the users' data.

>  You could always install the deb via dpkg, but rsync has quite a few
> dependencies:
> 
>  https://packages.debian.org/stretch/rsync
> 
>  The thing is that once you connect your computer to the Internet you
> are effectively relinquishing all functional illusions about "privacy"
> and all those silly, ambiguous and antiquated French words.
> 
>  In fact, it would be really nice to have as an added feature at the
> end of an Installation offline the option to transfer files from
> backpus once the installation is finished.

Isn't that why sysadmins write scripts? For example, the first script
I run after installation installs git and etckeeper, runs both, then
installs a list of *my* essential packages (with -y).

As for my own data, that's a separate issue, and on a separate
/home partition, so it's unaffected by upgrades or installations.

>  Just mentioning that one can go: "sudo apt" seems very easy but there
> is always more than meets "easiness"
> 
>  It would be extra nice if wireshark included by default, too. Then
> "paranoid" people like me would feel a bit more releaved. I think it
> is important to own your base, or at least manage it the best you can.

I can't see why you want to effectively force your defaults on other
people. Everyone's idea of what's necessary or essential differs,
and the Debian Priorities reflect that.

Cheers,
David.

Re: corriger un paquet deb

[Christophe Maquaire]

Le mardi 28 janvier 2020 à 14:17 +0100, Bernard Schoenacker a écrit :
> > bonjour,
> > 
> > j'ai besoin de corriger un paquet pour qu'il s'installe
> > et je n'ai pas le choix, car la version suivante qui est
> > actuellement en service est en 64 bits et l'ordi est
> > encore en i386 ...
> > 
> > auriez vous simplement un rtfm qui me permet de comprendre
> > comme le faire ?

là, peut-être
https://debian-handbook.info/browse/fr-FR/stable/sect.package-meta-information.html


> > c'est juste une dépendance de libmysql (métapaquet)  qui foire
> > 
> > merci pour votre aimable attention
> > 
> > bien à vous
> > bernard

Christophe

Re: corriger un paquet deb

[Christophe Maquaire]

Le mardi 28 janvier 2020 à 14:17 +0100, Bernard Schoenacker a écrit :
> > bonjour,
> > 
> > j'ai besoin de corriger un paquet pour qu'il s'installe
> > et je n'ai pas le choix, car la version suivante qui est
> > actuellement en service est en 64 bits et l'ordi est
> > encore en i386 ...

et installer depuis les paquets sources peut-être ?

> > auriez vous simplement un rtfm qui me permet de comprendre
> > comme le faire ?
> > 
> > c'est juste une dépendance de libmysql (métapaquet)  qui foire
> > 
> > merci pour votre aimable attention
> > 
> > bien à vous
> > bernard

Christophe

Re: no rsync in the German installation? (Kommando nicht gefunden.)

[Linux-Fan]

Albretch Mueller writes:


On 1/30/20, Stephan Seitz  wrote:
> On Do, Jan 30, 2020 at 12:14:19 +0100, Albretch Mueller wrote:
>> Hmm! I thought and would expect for rsync to be installed by default!
>
> No, rsync is Priority: optional.

 The first line of the DESCRIPTION of the rsync package goes: "rsync
is a fast and extraordinarily versatile file copying tool . . ."

 https://manpages.debian.org/stretch/rsync/rsync.1.en.html

 and here is a use case that (in my view, but I am sure "I am not the
only one" as Lennon sang) would be enough to raise the priority of
rsync.

 Way more often and "structured" than I could possibly attribute to
normal, random issues (well, I have more than enough reasons to
believe that it cannot possibly be "random" at all ;-)), I notice my
computer being hacked. What I do is:


Please, if it happens so often, then either
(a) I am totally ignorant about it, because I have never noticed such a  
thing or
(b) you are doing something different. Would you mind on elaborating the  
setup that gets you "hacked" frequently? How do you detect being hacked?  
Have you thought about measures to prevent the hacking altogether rather  
than focusing on how to restore in a most streamlined fashion?



 1) save all my data
 2) reinstall the baseline
 3) transfer all my data back to the new installation

 for §3 you would need rsync and, of course, you must do §1, §2 et §3
off line. Then, I:


I do not get it: Why do I need rsync if I want to copy my data back,  
exactly? Is good old `cp` insufficient for the task? Have you considered  
using `tar` instead of rsync. I would think that transferring my data (which  
is ~400k files, YMMV) is much faster if I copy it back from fewer files i.e.  
archives than via rsync? And tar can act as a cp-replacement if you do not  
like cp, the basic idea is this:


tar -C SRC -c . | tar -C DEST -x

Why do you need to be offline for the data copying?
Why is a netinstall followed by a simple `apt-get install rsync` not an option?

It might also be interesting to consider the “backup side” of things:  
Independently of your backup solution (I have heard, borg does a good job  
btw.), you might consider storing a copy of your backup program with your  
data s.t. you can restore without installing anything from the Internet on  
a freshly installed Debian? I even go as far as storing a bootable (at least  
for legacy BIOS) live-system on my backup media s.t. I can restore the data  
in the most OS-indepdentent manner imaginabile (works offline, if needed).



 4) baseline all my data (getting a snapshot of all files metadata and
signatures of their content)
 5)  connect to the Internet without javascript enabled from a
(possibly random) public place
 6) run a custom script to apt-get the rest
 7) baseline all my data again


So you are saying that you are being hacked, then need to backup the  
full system from a “(possibly random) public place”? It sounds like a horror- 
scenario to me... would it make more sense to avoid this scenario altogehter  
or at least make it the most rare of exceptions?



 You could always install the deb via dpkg, but rsync has quite a few
dependencies:

 https://packages.debian.org/stretch/rsync


Less questions here, possible some constructive commentary:

* rsync is part of DVD 1 IIUC. Replace whatever you are using for installing
  with Debian DVD 1 and have `rsync` installable from DVD without worrying
  about network connectivity.

* In case that does not work for you, I suggest investigating preparing a
  statically compiled binary for rsync. Of course, this also has some
  security implications (updates might be missing).


 The thing is that once you connect your computer to the Internet you
are effectively relinquishing all functional illusions about "privacy"
and all those silly, ambiguous and antiquated French words.


I thought the point (at least: one of the points) of using a free  
distribution like Debian is that you can safely connect to the Internet  
without having to worry. Unless, of course, you are starting to “surf” non- 
free websites? But just connecting and using apt afterwards should be safe,  
shouldn't it?



 In fact, it would be really nice to have as an added feature at the
end of an Installation offline the option to transfer files from
backpus once the installation is finished.


The problem with this is certainly: There are too many backup systems  
available. How would the choice about which restoration programs be included  
be made? The other thing is, that from my experience (having done maybe  
20--30 Debian installations in the past years), the restoration of backups  
after installation is very rare (occurred only once, but planned in  
advance). The reason being: Most of my installs are to new (virtual) systems  
for which no data is to be restored. I would thus conclude that your use  
case is (unless there be more data) rather uncommon?



 Just mentioning that one can go: "sudo 

Re: corriger un paquet deb

[Bernard Schoenacker]

> bonjour
> 
> ajouter l'architecture 64bits ne suffit pas?
> 
> Le 28/01/2020 à 14:17, Bernard Schoenacker a écrit :

bonjour,

merci beaucoup pour avoir indiqué cette possibilité, mais
malheureusement le CPU ne peut accepter d'instructions 
64 Bits ...

merci beaucoup d'avoir essayé de trouver une solution

bien à vous
bernard

Re: corriger un paquet deb

[Erwann Le Bras]

bonjour

ajouter l'architecture 64bits ne suffit pas?

Le 28/01/2020 à 14:17, Bernard Schoenacker a écrit :

bonjour,

j'ai besoin de corriger un paquet pour qu'il s'installe
et je n'ai pas le choix, car la version suivante qui est
actuellement en service est en 64 bits et l'ordi est
encore en i386 ...

auriez vous simplement un rtfm qui me permet de comprendre
comme le faire ?

c'est juste une dépendance de libmysql (métapaquet)  qui foire

merci pour votre aimable attention

bien à vous
bernard

Re: [HS] Transmission de SSID

[Erwann Le Bras]

bonjour

pour avoir expérimenté lors de la bascule de mon FAI de Bbox à Free : Si 
le SSID est le même avec le mot de passe identique, les périphériques ne 
se rendront compte de rien.


cordialement

Le 24/01/2020 à 21:20, MERLIN Philippe a écrit :

Bonjour,
Le problème que je pose ne concerne pas Debian c'est pourquoi j'ai mis un [HS]
devant le sujet . Actuellement J'ai une connexion fibre arrivant sur une
Freebox Mini 4K configurée en mode routeur et servant de serveur Wifi, ce
serveur Wifi à un SSID et un mot de passe pour y accéder. La Mini 4K est un peu
faible comme serveur Wifi , j'ai décidé de configurer la Mini 4K  en mode Bridge
et confier à un routeur Wifi ce rôle de serveur Wifi le routeur aura le même 
SSID
et le même mot de passe.
J'aimerai savoir si ces modifications  dans le réseau local passeront
complètement inaperçu des utilisateurs ou devront ils se réinitialiser
complètement ?
Cette question concerne également une imprimante Wifi ?
Merci pour vos avis.
Philippe Merlin

Hello

[Harry Arthur Foundation]

We have donation for you contact us for more info.

Thank You
Harry Arthur Foundation.

[HS] L’insolente santé de Microsoft, dopé par le Cloud

[ajh-valmer]

Tout est dans le sujet, l'article complet :

www.lefigaro.fr/societes/l-insolente-sante-de-microsoft-dope-par-le-cloud-20200130

Sa capitalisation boursière  atteint 1.282 milliards de dollars.
(elle pourrait rembourser la moitié de la dette de la France).

Et dire que Microsoft n'est plus dans les GAFAM, devenu maintenant GAFA.
(au fait, pourquoi... ?).

Re: OT: Belkin F1DS104J KVM and PCs on a UPS

[Roger Price]

On Thu, 30 Jan 2020, rhkra...@gmail.com wrote:


Anybody have experience with the Belkin F1DS10[2 4]J KVMs?
My question: Does that mean I need to put the KVM on the UPS as well?


Speaking from experience, another reason to put the KVM switch on the UPS is 
protection from power surges.  I live in a lightning prone area, and I have lost 
expensive gear because ancilliary stuff such as a KVM switch with a wired 
connection to PCs was not protected.


Roger

Re: OT: Belkin F1DS104J KVM and PCs on a UPS

[debian]

On Thu, 30 Jan 2020, rhkra...@gmail.com wrote:


I just bought a used KVM switch (Belkin F1DS104J) and it requires power (9VDC 
(and has a power brick)), but the instructions say that it
should be powered up before the attached PCs.

My computers (at least the CPUs) are on a UPS to guard against brief power 
outages (thankfully fairly rare -- knock on wood).

My question: Does that mean I need to put the KVM on the UPS as well? If I 
don't, would I have to reboot the CPUs after I get the KVM
powered again?


I don't know how you manage your UPS unit, but if wall power loss causes 
messages to appear on screen giving you advance warning of a possible system 
shutdown, then you probably need to have the switch powered via the same UPS.


Roger

Re: entirely keyboard based installation ...

[Nektarios Katakis]

Στις 2020-01-30 12:42, Albretch Mueller έγραψε:

That probably is a bug of the installer.


 They should let users know


You can open an issue in the debian installer repo. They might consider 
serious and fix it.





The simplest solution is to try a usb mouse.


 Thank you

If the laptop mouse is not detected during the Installation it 
probably wont be detected later too!


 laptop mouse pad worked fine after the Installation


Did you install any proprietary drivers after installation?



 lbrtchx



On 1/30/20, Nektarios Katakis  
wrote:

Στις 2020-01-30 11:17, Albretch Mueller έγραψε:

I was installing Debian yesterday and my mouse wasn't working (a
Leneovo Netbook X130e).

 I tried to tab through to the „Bilschirmbild“ option, but could not
reach out to it because that option was being skipped!?

 That shouldn't be and/or I wonder what the reason for that
obstruction could be.

 lbrtchx


That probably is a bug of the installer. The simplest solution is to 
try
a usb mouse. If the laptop mouse is not detected during the 
installation

it probably wont be detected later too!

---
Regards,
Nektarios Katakis

Re: OT: Belkin F1DS104J KVM and PCs on a UPS

[Alexander V. Makartsev]

On 30.01.2020 17:36, rhkra...@gmail.com wrote:
>
> Anybody have experience with the Belkin F1DS10[2 4]J KVMs?
>
>  
>
> I just bought a used KVM switch (Belkin F1DS104J) and it requires
> power (9VDC (and has a power brick)), but the instructions say that it
> should be powered up before the attached PCs.
>
>  
>
> My computers (at least the CPUs) are on a UPS to guard against brief
> power outages (thankfully fairly rare -- knock on wood).
>
>  
>
> My question: Does that mean I need to put the KVM on the UPS as well?
> If I don't, would I have to reboot the CPUs after I get the KVM
> powered again?
>
I've not used this model in particular, but I think this restriction was
put into manual because it supports PS\2 keyboard and mouse. If you will
use USB keyboard and mouse only, chances are high you can ignore those
instructions and connect\disconnect KVM freely on-the-fly without any
functionality loss.
This theory should be tested, of course, to say for sure. I simply tried
to understand possible logic behind those restrictions.

-- 
With kindest regards, Alexander.

⢀⣴⠾⠻⢶⣦⠀ 
⣾⠁⢠⠒⠀⣿⡁ Debian - The universal operating system
⢿⡄⠘⠷⠚⠋⠀ https://www.debian.org
⠈⠳⣄ 

Upcycle Windows 7 by FSF

[Leandro de Nobrega]

Srs.(as), boa noite!!!

Incomodando!!!
E vamos continuar.
Leiam, assinem e compartilhem..

Upcycle Windows 7 LEIA AQUI

Re: entirely keyboard based installation ...

[Albretch Mueller]

 > That probably is a bug of the installer.

 They should let users know

> The simplest solution is to try a usb mouse.

 Thank you

> If the laptop mouse is not detected during the Installation it probably wont 
> be detected later too!

 laptop mouse pad worked fine after the Installation

 lbrtchx



On 1/30/20, Nektarios Katakis  wrote:
> Στις 2020-01-30 11:17, Albretch Mueller έγραψε:
>> I was installing Debian yesterday and my mouse wasn't working (a
>> Leneovo Netbook X130e).
>>
>>  I tried to tab through to the „Bilschirmbild“ option, but could not
>> reach out to it because that option was being skipped!?
>>
>>  That shouldn't be and/or I wonder what the reason for that
>> obstruction could be.
>>
>>  lbrtchx
>
> That probably is a bug of the installer. The simplest solution is to try
> a usb mouse. If the laptop mouse is not detected during the installation
> it probably wont be detected later too!
>
> ---
> Regards,
> Nektarios Katakis
>

OT: Belkin F1DS104J KVM and PCs on a UPS

[rhkramer]

Anybody have experience with the Belkin F1DS10[2 4]J KVMs?

I just bought a used KVM switch (Belkin F1DS104J) and it requires power (9VDC 
(and has a power brick)), but the instructions say that it should be powered 
up  before the attached PCs.

My computers (at least the CPUs) are on a UPS to guard against brief power 
outages (thankfully fairly rare -- knock on wood).

My question: Does that mean I need to put the KVM on the UPS as well?  If I 
don't, would I have to reboot the CPUs after I get the KVM powered again?

Re: no rsync in the German installation? (Kommando nicht gefunden.)

[Albretch Mueller]

>  I notice my computer being hacked

 JavaScript and browsers are the #1 vectors they use to hack, own your
computers and cell phones in automated ways

 lbrtchx

Re: Problème trusted.gpg après mise à niveau

[Jean-Marc]

Tue, 28 Jan 2020 21:29:04 +0100
Bertrand Delaunay  écrivait :

> dpkg -S /etc/apt/trusted.gpg me donne ce résultat :
> dpkg-query: aucun chemin ne correspond à /etc/apt/trusted.gpg
> 
> Vous en pensez quoi ?

Que ce fichier ne vient pas de Debian.
Que, perso, je le mettrai au chaud.
Style :
sudo mkdir /root/trusted.gpg.d && sudo mv /etc/apt/trusted.gpg 
/root/trusted.gpg.d

Et voilà !

Jean-Marc 
https://6jf.be/keys/ED863AD1.txt


pgp3pLRUpAoEA.pgp
Description: PGP signature

Re: no rsync in the German installation? (Kommando nicht gefunden.)

[Albretch Mueller]

On 1/30/20, Stephan Seitz  wrote:
> On Do, Jan 30, 2020 at 12:14:19 +0100, Albretch Mueller wrote:
>> Hmm! I thought and would expect for rsync to be installed by default!
>
> No, rsync is Priority: optional.

 The first line of the DESCRIPTION of the rsync package goes: "rsync
is a fast and extraordinarily versatile file copying tool . . ."

 https://manpages.debian.org/stretch/rsync/rsync.1.en.html

 and here is a use case that (in my view, but I am sure "I am not the
only one" as Lennon sang) would be enough to raise the priority of
rsync.

 Way more often and "structured" than I could possibly attribute to
normal, random issues (well, I have more than enough reasons to
believe that it cannot possibly be "random" at all ;-)), I notice my
computer being hacked. What I do is:

 1) save all my data
 2) reinstall the baseline
 3) transfer all my data back to the new installation

 for §3 you would need rsync and, of course, you must do §1, §2 et §3
off line. Then, I:

 4) baseline all my data (getting a snapshot of all files metadata and
signatures of their content)
 5)  connect to the Internet without javascript enabled from a
(possibly random) public place
 6) run a custom script to apt-get the rest
 7) baseline all my data again

 You could always install the deb via dpkg, but rsync has quite a few
dependencies:

 https://packages.debian.org/stretch/rsync

 The thing is that once you connect your computer to the Internet you
are effectively relinquishing all functional illusions about "privacy"
and all those silly, ambiguous and antiquated French words.

 In fact, it would be really nice to have as an added feature at the
end of an Installation offline the option to transfer files from
backpus once the installation is finished.

 Just mentioning that one can go: "sudo apt" seems very easy but there
is always more than meets "easiness"


 It would be extra nice if wireshark included by default, too. Then
"paranoid" people like me would feel a bit more releaved. I think it
is important to own your base, or at least manage it the best you can.

 lbrtchx

Re: entirely keyboard based installation ...

[Nektarios Katakis]

Στις 2020-01-30 11:17, Albretch Mueller έγραψε:

I was installing Debian yesterday and my mouse wasn't working (a
Leneovo Netbook X130e).

 I tried to tab through to the „Bilschirmbild“ option, but could not
reach out to it because that option was being skipped!?

 That shouldn't be and/or I wonder what the reason for that
obstruction could be.

 lbrtchx


That probably is a bug of the installer. The simplest solution is to try
a usb mouse. If the laptop mouse is not detected during the installation
it probably wont be detected later too!

---
Regards,
Nektarios Katakis

Re: no rsync in the German installation? (Kommando nicht gefunden.)

[Stephan Seitz]

On Do, Jan 30, 2020 at 12:14:19 +0100, Albretch Mueller wrote:

Hmm! I thought and would expect for rsync to be installed by default!


No, rsync is Priority: optional.

Stephan

--
|If your life was a horse, you'd have to shoot it.|

entirely keyboard based installation ...

[Albretch Mueller]

 I was installing Debian yesterday and my mouse wasn't working (a
Leneovo Netbook X130e).

 I tried to tab through to the „Bilschirmbild“ option, but could not
reach out to it because that option was being skipped!?

 That shouldn't be and/or I wonder what the reason for that
obstruction could be.

 lbrtchx

Re: no rsync in the German installation? (Kommando nicht gefunden.)

[Albretch Mueller]

 Hmm! I thought and would expect for rsync to be installed by default!

Re: no rsync in the German installation? (Kommando nicht gefunden.)

[tomas]

On Thu, Jan 30, 2020 at 11:43:57AM +0100, Albretch Mueller wrote:
> $ date
> Do 30. Jan 08:46:51 CET 2020
> 
> $ uname -a
> Linux lbrtchx 4.9.0-6-amd64 #1 SMP Debian 4.9.82-1+deb9u3 (2018-03-02)
> x86_64 GNU/Linux
> 
> $ which rsync
> $
> 
>  right after the installation when I tried to transfer files I got:
> 
> // __ bash: rsync: Kommando nicht gefunden.
> 
> $ date; time rsync --archive --verbose "${_SRC}"  "${_DST}"
> Do 30. Jan 08:19:22 CET 2020
> bash: rsync: Kommando nicht gefunden.
> 
> real0m0,002s
> user0m0,004s
> sys 0m0,000s
> $
> 
>  what is this about?

  sudo apt install rsync

(or perhaps I didn't understand your problem?)

Cheers
-- t


signature.asc
Description: Digital signature

no rsync in the German installation? (Kommando nicht gefunden.)

[Albretch Mueller]

$ date
Do 30. Jan 08:46:51 CET 2020

$ uname -a
Linux lbrtchx 4.9.0-6-amd64 #1 SMP Debian 4.9.82-1+deb9u3 (2018-03-02)
x86_64 GNU/Linux

$ which rsync
$

 right after the installation when I tried to transfer files I got:

// __ bash: rsync: Kommando nicht gefunden.

$ date; time rsync --archive --verbose "${_SRC}"  "${_DST}"
Do 30. Jan 08:19:22 CET 2020
bash: rsync: Kommando nicht gefunden.

real0m0,002s
user0m0,004s
sys 0m0,000s
$

 what is this about?

 lbrtchx

Re: Emacs and loss of highlighting: problem semi-solved (Buster MATE)

[tomas]

On Thu, Jan 30, 2020 at 10:12:25AM +0200, Andrei POPESCU wrote:

[...

> It's a default in the most common packaging tool that saves work for 
> many maintainers (they don't need to explicitly mark files under /etc as 
> conffiles).
> 
> To me it's quite clear that conffiles are typically in /etc (the text 
> explicitly allows for other possibilities), but not every 
> (configuration) file in /etc is a conffile.

That's true, yes.

Cheers
-- t


signature.asc
Description: Digital signature

Re: Sudo

[Kenneth Parker]

On Thu, Jan 30, 2020, 3:00 AM Keith Bainbridge  wrote:

> On 29/1/20 9:17 am, Kenneth Parker wrote:
> >
> > So one of my "early actions", is to enter "sudo passwd root" and enter
> > your "normal user password".
> >
>
>
>
> You should have then been asked to enter and re-enter a new password -
> for root?
>

Yes.  But note that the OS does not know that you enabled Root, so you
still have the option of using Sudo with your own Password.  I still used
that for routine, one-off actions, or if I wanted the special Logging that
occurs for Sudo.

Kenneth Parker

>
>
>
> --
> Keith Bainbridge
>
> keith.bainbridge.3...@gmail.com
> 0447 667 468
>
>

Re: Fresh install UEFI debian-10.2.0-amd64-xfce-CD-1 will not boot

[Phil Wyett]

On Wed, 2020-01-29 at 21:27 -0800, David Christensen wrote:
> On 2020-01-29 10:51, David Christensen wrote:
> >  root@d-i:/# grub-install --target x86_64-efi-signed
> >  grub-install: error: /usr/lib/grub/x86_64-efi-
> > signed/modinfo.sh 
> > doesn't exist. Please specify --target or --directory.
> 
> I was able to install grub for x86_64-efi:
> 
>   root@d-i:/# grub-install --target x86_64-efi
>   Installing for x86_64-efi platform.
>   Installation finished. No error reported.
> 
> 
> But, the drive still will not boot in the PowerEdge T30, UEFI, with
> or 
> without Secure Boot, or in the DQ67SW, UEFI without Secure Boot.
> 
> 
> Is anybody booting and running Buster from a GPT disk using
> UEFI?  With 
> or without Secure Boot?
> 
> 
> David
> 

Hi,

I am running buster with two disk setup in laptop (PC Specialist -
Lafite 3) - GPT, (U)EFI and Secure Boot enabled. First disk (NVME) is '/' and 
second (SSD) is '/home'.

Disk /dev/nvme0n1: 465.8 GiB, 500107862016 bytes, 976773168 sectors
Disk model: WDS500G3X0C-00SJG0  
Units: sectors of 1 * 512 = 512 bytes
Sector size (logical/physical): 512 bytes / 512 bytes
I/O size (minimum/optimal): 512 bytes / 512 bytes
Disklabel type: gpt
Disk identifier: 245E1C83-E8A6-4F79-90E6-BB2020B3E161

Device Start   End   Sectors  Size Type
/dev/nvme0n1p1  2048   1953791   1951744  953M EFI System
/dev/nvme0n1p2 914272256 976771071  62498816 29.8G Linux swap
/dev/nvme0n1p3   1953792 914272255 912318464  435G Linux filesystem

Partition table entries are not in disk order.


Disk /dev/sda: 465.8 GiB, 500107862016 bytes, 976773168 sectors
Disk model: Seagate BarraCud
Units: sectors of 1 * 512 = 512 bytes
Sector size (logical/physical): 512 bytes / 512 bytes
I/O size (minimum/optimal): 512 bytes / 512 bytes
Disklabel type: gpt
Disk identifier: 841BBA13-490B-4A02-BB6A-80C088CF51B0

Device Start   End   Sectors   Size Type
/dev/sda1   2048 976771071 976769024 465.8G Linux filesystem

Regards

Phil

-- 

*** Playing the game for the games sake. ***

WWW: https://kathenas.org

Twitter: @kathenasorg

IRC: kathenas

GPG: 724AA9B52F024C8B



signature.asc
Description: This is a digitally signed message part

Re: Fresh install UEFI debian-10.2.0-amd64-xfce-CD-1 will not boot

[didier . gaumet]

Le jeudi 30 janvier 2020 06:30:04 UTC+1, David Christensen a écrit :
> On 2020-01-29 10:51, David Christensen wrote:
> >      root@d-i:/# grub-install --target x86_64-efi-signed
> >      grub-install: error: /usr/lib/grub/x86_64-efi-signed/modinfo.sh 
> > doesn't exist. Please specify --target or --directory.
> 
> I was able to install grub for x86_64-efi:
> 
>   root@d-i:/# grub-install --target x86_64-efi
>   Installing for x86_64-efi platform.
>   Installation finished. No error reported.
> 
> 
> But, the drive still will not boot in the PowerEdge T30, UEFI, with or 
> without Secure Boot, or in the DQ67SW, UEFI without Secure Boot.
> 
> 
> Is anybody booting and running Buster from a GPT disk using UEFI?  With 
> or without Secure Boot?
> 
> 
> David

In your case (USB removable device), perhaps (not sure) you will succeed with 
the --removable or --force-extra-removable options of grub-install. There is a 
similar option in the expert mode of installation of Debian at the grub 
installation step.

I have already run Debian in UEFI (non Legacy mode), GPT and Secure Boot with 
no  problem (Secure Boot mode: briefly, I am using Insecure Mode). 

Re: Whither "bullseye?

[Keith Bainbridge]

On 29/1/20 5:13 am, Bob Bernstein wrote:

Not really whither, but when?


If you install from a testing .iso, you'll get bullseye, down to the 
repo's listed at sources.list.




And this page talks about bullseye as testing, just as buster is stable.

https://www.debian.org/releases/testing/



--
Keith Bainbridge

keith.bainbridge.3...@gmail.com
0447 667 468

Re: Ethernet trouble

[Andrei POPESCU]

On Mi, 29 ian 20, 12:33:32, Bob Weber wrote:
>  
> I have struggled with this for hours before.  The systemd naming convention
> is explained at:
> 
> https://www.freedesktop.org/software/systemd/man/systemd.link.html
> 
> 
> Pay attention to the Examples near the bottom of the page.  There are
> udevadm commands that you can help you check the configuration.   I ended up
> with the four following configurations:
> 
> 
> 1.  kernel command line option in grub add "net.ifnames=0"
> 
> 
> 2.  /etc/systemd/network/10-eth0.link:
> 
> [Match]
> MACAddress=00:xx:xx:xx:33:ce
> 
> [Link]
> Name=eth0
> 
> 
> 3.  /etc/systemd/network/10-eth0.link:
> 
> [Match]
> MACAddress=00:xx:xx:xx:33:d2
> 
> [Link]
> Name=eth1
> 
> 
> 4.  And finally:
> 
> /etc/systemd/network/99-default.link  linked to /dev/null
> 
> 
> 
> This is my main router machine so these names have to be the same on every
> boot so the firewall rules work as desired.  There also seems to be bugs in
> systemd (I use testing) so that these appear to not work.  I think the key
> was setting 99-default.link to /dev/null.

As an additional suggestion, if one takes the time to set up per 
interface .link files one might as well use intuitive names, like 
"internet", "lan", etc.

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: How to set Gedit left margin to 80 characters

[Andrei POPESCU]

On Mi, 29 ian 20, 09:52:29, Default User wrote:
> On Wed, Jan 29, 2020, 02:17 Andrei POPESCU  wrote:
> >
> > If you take suggestions for editors you might as well look into (g)vim,
> > or cream if you find the learning curve too steep.
> 
> Andrei, thank you for the suggestions.
> 
> I don't know anything about cream, but I'll look it up.
> 
> As for *vi* . . .  I have tried to use that, but I just can't seem to "get"
> modal editing. To me it is just too difficult and non-intuitive. Which is a
> shame, because otherwise it seems to have a lot of good points.

'cream' is just some macros on top of vim to make it easier to use. It 
can also be an entry point to vim "proper" (it was for me).

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: Emacs and loss of highlighting: problem semi-solved (Buster MATE)

[Andrei POPESCU]

On Mi, 29 ian 20, 08:41:41, to...@tuxteam.de wrote:
> On Wed, Jan 29, 2020 at 08:48:56AM +0200, Andrei POPESCU wrote:
> > 
> > It seems to me you are conflating dpkg conffiles[1] with files in /etc.
> > 
> > [1] https://www.debian.org/doc/debian-policy/ap-pkg-conffiles.html
> 
> Yep, but this [2] /strongly/ suggests that conffiles are exactly those
> living under /etc.

It's a default in the most common packaging tool that saves work for 
many maintainers (they don't need to explicitly mark files under /etc as 
conffiles).

To me it's quite clear that conffiles are typically in /etc (the text 
explicitly allows for other possibilities), but not every 
(configuration) file in /etc is a conffile.
 
> Cheers
> [2] https://www.debian.org/doc/manuals/maint-guide/dother.en.html#conffiles

The 3rd paragraph explicitly recommends *not* marking files as conffiles 
if they must be changed through other mechanisms (I believe cups does 
this, but am too lazy to check).

It then goes on about how to deal with having a configuration file (not 
conffile) in /etc that is not managed by dpkg.

Kind regards,
Andrei
-- 
http://wiki.debian.org/FAQsFromDebianUser


signature.asc
Description: PGP signature

Re: Sudo

[Keith Bainbridge]

On 29/1/20 9:17 am, Kenneth Parker wrote:


So one of my "early actions", is to enter "sudo passwd root" and enter 
your "normal user password".






You should have then been asked to enter and re-enter a new password - 
for root?




--
Keith Bainbridge

keith.bainbridge.3...@gmail.com
0447 667 468